An Agile Approach to Validate a Formal Representation of the GDPR

Interdisciplinary Research Group in Socio-technical Cybersecurity

An Agile Approach to Validate a Formal Representation of the GDPR

Cesare Bartolini, Gabriele Lenzini, Cristiana Santos
Abstract:
Modeling in a knowledge base of logic formulæ the articles of the GDPR enables semi-automatic reasoning of the Regulation. To be legally substantiated, it requires that the formulæ express validly the legal meaning of the Regulation’s articles. But legal experts are usually not familiar with logic, and this calls for an interdisciplinary validation methodology that bridges the communication gap between formal modelers and legal evaluators. We devise such a validation methodology and exemplify it over a knowledge base of articles of the GDPR translated AQ2 into Reified I/O (RIO) logic and encoded in LegalRuleML. A pivotal element of the methodology is a human-readable intermediate representation of the logic formulæ that preserves the formulæ’s meaning while rendering it in a readable way to non-experts. After being applied over a use case, we prove that it is possible to retrieve feedback from legal experts about the formal representation of Art. 5.1a and Art. 7.1. What emerges is an agile process to build logic knowledge bases of legal texts, and to support their public trust, which we intend to use for a logic AQ3 model of the GDPR, called DAPRECO knowledge base.
Authors:
Cesare Bartolini, Gabriele Lenzini, Cristiana Santos
Publication date:
2019
Published in:
International Symposium on Artificial Intelligence
Reference:
Bartolini, C., Lenzini, G., & Santos, C. (2018, November). An agile approach to validate a formal representation of the GDPR. In JSAI International Symposium on Artificial Intelligence (pp. 160-176). Springer, Cham.

Get in touch with us

SnT – Interdisciplinary Centre for Security, Reliability and Trust
Maison du Nombre, 6, avenue de la Fonte L-4364 Esch-sur-Alzette
info-irisc-lab@uni.lu